Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Fortinet Exam NSE7_PBC-7.2 Topic 1 Question 9 Discussion

Actual exam question for Fortinet's NSE7_PBC-7.2 exam
Question #: 9
Topic #: 1
[All NSE7_PBC-7.2 Questions]

You have been tasked with deploying FortiGate VMs in a highly available topology on the Amazon Web Services (AWS) cloud. The requirements for your deployment are as follows:

* You must deploy two FortiGate VMs in a single virtual private cloud (VPC), with an external elastic load balancer which will distribute ingress traffic from the internet to both FortiGate VMs in an active-active topology.

* Each FortiGate VM must have two elastic network interfaces: one will connect to a public subnet and other will connect to a private subnet.

* To maintain high availability, you must deploy the FortiGate VMs in two different availability zones.

How many public and private subnets will you need to configure within the VPC?

Show Suggested Answer Hide Answer
Suggested Answer: C

https://github.com/fortinet/aws-cloudformation-templates/blob/master/LambdaAA-RouteFailover/6.0/README.md

https://github.com/fortinet/aws-cloudformation-templates/tree/master/LambdaAA-RouteFailover/6.0


by Carlee at Mar 07, 2024, 02:01 AM

Limited Time Offer

25%

Off

Get Premium NSE7_PBC-7.2 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Chantay
8 days ago
Haha, yeah, no kidding! Can you imagine if one of the subnets was too small and couldn't handle the traffic? The FortiGates would be like 'Sorry, we're at capacity, you're on your own buddy!' Not a great high availability setup. *chuckles*
upvoted 0 times
...
Shawnda
9 days ago
Yep, that makes sense. The only thing I'd add is that it's important to make sure the subnets are properly sized and routed to support the high availability setup. Don't want any bottlenecks or single points of failure there.
upvoted 0 times
...
Berry
10 days ago
I agree with your analysis, Regenia. The requirement to have the FortiGate VMs in two different availability zones means we need to have duplicate public and private subnets in each zone. So the answer is four subnets - two public and two private.
upvoted 0 times
...
Regenia
11 days ago
Okay, let's think this through step-by-step. We need to deploy two FortiGate VMs in a single VPC, with an external load balancer distributing traffic to them in an active-active topology. Each FortiGate VM needs two network interfaces - one in a public subnet and one in a private subnet. And we need to deploy the VMs in two different availability zones to maintain high availability. So, the key thing I see is that we need a total of four subnets - two public and two private, one of each in each availability zone.
upvoted 0 times
...

Save Cancel